Archive for the ‘RFID biometric mobile’ category

Important considerations for a ransomware attack

October 31st, 2020

This post contains general information only offered in good faith and cannot consider every customers’ environment or risk. Synergy Software Systems is not, by means of this publication, rendering accounting, business, financial, investment, legal, tax, or any other professional advice or services. This publication is not a substitute for such professional advice or services, nor should you use it as a basis for any decision, action or omission that may affect you or your business. Before making any decision, taking any action or omitting an action that may affect you or your business, consult a qualified professional advisor. You acknowledge that Synergy Software Systems shall not be responsible for any loss sustained by you or any person who relies on this publication.

If your network experiences a ransomware attack, then it is likely that your IT staff will want to immediately research and work to stop the attack before they get assistance from an outside incident response firm. This guidance is to help you to prepare your strategy, policies and and responses procedure and checklists to aid your first responders to identify important response priorities for containing a ransomware attack and to avoid common pitfalls that can hinder later investigation and recovery activities.

• Notify your incident response partner and cyber insurance agent (if you have these relationships in place).
• Be aware of any statutory and legal or contractual requirements e.g. to notify authorities, or trading partners relying on your services or integrated systems perhaps with SLAs and financial penalties, or perhaps GDPR related.
• Stop any malicious encryption software that may still be running.
• If you suspect servers and workstations are still encrypting data, power down as quickly as possible to reliably stop further encryption.
• If continued encryption is not a concern on a system, leave the system powered on but disconnect it from the network (as RAM may contain forensic data).
• Disconnect network attached storage (NAS) systems from the network immediately and until you can validate that all systems are free of ransomware.
• Isolate critical systems to prevent further spread of the malware.
• Isolate backups and backup servers.
• Shut down servers or disconnect them from networks.
• Shut down wide area network tunnels.
• Disable any employee remote access services that do not use multi-factor authentication (MFA).
• Disable VPNs or whitelist source IPs to known employees.
• Disable Remote Desktop Protocol (RDP) services or whitelist source IPs to known employees.
• Disable existing domain administrator accounts.
• Create new domain administrator accounts for critical IT staff.
• Disable all other domain administrator accounts (to prevent logins and use of issued Kerberos tickets).
• Disable malware command-and-control channels.
• Disable outbound web traffic.
• Disable all other outbound services/protocols through the firewall.
• Collect and retain logs that are not already in a centralized archive.
• As Windows security event logs can by default be overwritten within days, copy the folder c:\windows\system32\winevt\logs from any domain controllers, RDP servers and other key impacted servers to a safe place.
• Since many firewall logs and VPN are also overwritten quickly, work to export VPN access logs and firewall traffic logs to a safe place.

DEVELOP A RECOVERY STRATEGY
At this point evaluate and develop an investigation and recovery strategy. Examples of key next steps include:
• When needed, completing contracting with a legal firm and/or incident response firm
• Determining the state of storage systems and status of online and offline backups
• Creating an inventory of impacted systems
• Prioritizing applications for recovery
• Creating an inventory of sensitive or high-risk data that could have been stolen
• Evaluating potential risk to cloud email accounts or other cloud services

PITFALLS TO AVOID
In the case of an incident, your organization will want to avoid the following.
• DESTROYING CRITICAL DATA
Many times, IT staff may delete encrypted files or impacted virtual machines to free space for recovery, only to learn that the associated backups are missing or corrupt. Be sure to retain copies of all encrypted or impacted files and systems until after backups are validated and restores are complete, even if it means you have to slow down recovery to add temporary storage and copy potentially unneeded data.

• DESTROYING EVIDENCE
Deleting files or virtual machines, or performing other recovery activities before taking steps to preserve disk images, logs and other evidence, can destroy artifacts that could be used later to help tell the story of how the attacker got in and what data they stole.

• OPTIMISTIC ASSUMPTIONS
There is often a tendency to underestimate an attacker early on and to assume that it is unlikely that the attacker accessed some critical system or set of sensitive data. Perhaps because of a belief that the data would have been too hard to find or too difficult to extract. The organization, may then base its decisions about investigation and notification activities on these optimistic assumptions.

• LEAKING INFORMATION TO THE ATTACKER
Be aware that the attacker may be monitoring your communications during and after the attack. For example, don’t disclose your insurance policy’s ransom coverage limit in a public board meeting discussing the community’s response options, or the attacker will increase their demand to match the policy limit. Social media comments by staff may worry your customers. So, consider also how you will handle communications to your trading partners.

As cybercrime becomes ever more targeted and resourced ensure you have a strategy in place- just in case. Review the security tools you use. Define policies and ensure they are followed for example:
• use of secure regularly changed passwords, or dual authentication passwords
• back ups
• training of new users, and refresher training

Install and use security systems e.g.
• Physical access controls
• Firewalls,
• Anti-malware tools
Consider whether cloud migration or managed services are a better option.

Synergy Support during covid-19 lockdown

April 6th, 2020

As a precautionary measure instructed by our Government for COVID-19 to be Safe at Home to protect our staff and to protect the community Synergy, consultants are instructed to work from home for at east the next two weeks.

To help us to provide continuous support please follow these guidelines to ensure our queries are recorded and assigned to be addressed in addressed as soon as possible.:

1. Send an email with a clear description in the email Subject line”, which will be helpful to track the email chain.
2. Please mention any internal issue/ticket number assigned, the user, and as much detail as possible e.g. transaction detail such as: order number, vendor code, item code – take a screenshot – copy any error message and attach those details to the email. Better still record the steps e.g. with e.g. webex, or task recorder.
3. If you are not on your work telephone number, or email, e,g when working from home yourself, then ensure you provide contact information for us to reach you.
4. To understand the issue, we may need to connect to the user PC through a screen sharing app such as Microsoft TEAMS, or Go To Meeting. Please ask your admin take appropriate action to ensure we can dial in remotely to your systems if needed, Even when located elsewhere they will also able to join such sessions.
5. Every request is given a ticket number and is then assigned to a consultant. For follow up communication please mention the ticket number. That will make it easier for us to find and review the details and actions to date. It’s possible that more than one consultant may be involved and they will be working remote from each other. This will save time for everyone .
6. Once the support request/ issue is resolved, upon receipt of confirmation email, the request will be closed.
7. When needed to discuss pending issues we will also be available to have a conference call via Microsoft Teams. issues @ mutual agreed time.
6. All support request to be sent to Axapta.support@synergy-software.com and we suggest copy in the lead consultant and account manager with whom you normally deal’
7. Please circulate this information to respective users and department heads, so that everyone working from home is aware that we are still available to support you as best we can and that they know how to help us, to help them.

SnapLogic iPasS integration as a service – from Synergy Software Systems.

October 20th, 2019

Business Intelligence Managers/Analysts, Data/ETL Engineers, and Information/Data Architects are tasked with empowering business users to make use of
data to drive smart decisions and innovations. Data-driven initiatives can be challenging considering the explosion of data volumes due to the proliferation of sensors, IoT, and mobile computing.

Moreover, a growing number of groups within the business want access to fresh data.

To fully harness their data, organizations must also have a cloud strategy for their digital transformation efforts, namely to migrate data from
on-premises environments to the cloud. Considering the tremendous business value of unlocking that data, it’s imperative to prioritize and streamline these
data integration and migration projects.

Gone are the days when IT needed hundreds of coders to build extract, transform, load (ETL) solutions and then maintain those by writing more code. Modern integration platforms eliminate the need for custom coding. Now, data integration projects deploy and scale, often as much as ten times faster.

iPaaS platforms ease the pain because they’re designed for flexibility and ease of deployment for any integration project. A drag-and-drop UX coupled with a powerful platform and hundreds of pre-built connectors out of the box.

The connectors are always up-to-date, so the IT organization doesn’t spend an inordinate amount of time maintaining every integration by hand. This saves an incredible amount of time, money, and frustration across the team and projects and greatly reduces risk.

Not all integration platforms are created equal. Some do simple point-to-point cloud app integrations while others transform large and complex data into a data lake for advanced analytics. Some stgill require extensive developer resources to hand-code APIs while others provide self-service, drag-and-drop offerings that can be used by IT and business leaders alike. Some are best for specific tactical projects while others provide a strategic, enterprise-wide platform for multi-year digital transformation projects.

Organizations must address four key steps during the data migration and integration process:
1. Capture data that supports both the known use cases as well as future undefined use cases (think IoT data to support a future machine learning
enabled use case).
2. Conform inbound data to corporate standards to ensure governance, quality, consistency, regulatory compliance, and accuracy for downstream
consumers.
3. Refine data for its eventual downstream application and/or use cases (once its been captured and conformed to corporate standards).
4. Delivery of data needs to be broad and prepared to support future unknown destinations.

For decades, IT has been tasked to manage integration projects by writing tons of custom code. This onerous task is even more complex with the proliferation of SaaS applications, the surge in big data, the emergence of IoT, and the rise of mobile devices. IT’s integration backlog has exploded. Not only is the deployment too much work, but there is a growing cost to maintain all of the integrations.

Deploying a tactical or departmental data warehouse solution should take days, not months. Moreover, enterprise-wide data transformation projects should take months, not years.

The best data integration platforms:
- Support multiple app and data integration use cases across cloud, on-premises, and hybrid deployments
- Offer the flexibility to be used in cloud, hybrid, or on-premises environments, regardless of the execution location
- Provide a self-service user experience aided by AI, machine learning, hundreds of pre-built connectors, and integration pipeline
templates (patterns) resulting in greater user productivity, and faster time-to-integration
- Have an underlying, scalable architecture to grow with evolving data and integration requirements
- Support different data modes such as streaming, event-driven, real-time or batch

The SnapLogic iPaaS offering is functionally rich and well-proven for a variety of use cases. It supports hybrid deployments and provides rich and differentiating features for analytics and big data integration (Hadooplex). Clients score SnapLogic as above average for cloud characteristics, functional completeness, ease of use and ability to meet SLAs.” Gartner

SnapLogic is a U.S.-based integration platform company. In mid-2013, it transitioned from a traditional software business to an iPaaS model with the release of the SnapLogic Elastic Integration Platform which provides a large set of native iPaaS capabilities that target the cloud service integration, analytics and big data integration use cases.

The flagship Enterprise Edition features a set of base adapters (Snaps), an unlimited number of connections and unlimited data volume.

Synergy Software Systems has been an Enterprise Solutions Integrator in the GCC since 1991. We are pleased to announce our formal partnership to represent Snap Logic in the MEA region.

Do you need to integrate with Azure? with SAP Data Warehouse Cloud? with Workday? With Odette compliant auto mamufacturers………..?.

To learn more call us on 009714 3365589

Gartner recognized SnapLogic as a Visionary in its Data Integration Magic Quadrant

August 7th, 2019

Gartner recognized SnapLogic as a Visionary in its Data Integration Magic Quadrant! This comes on the heels of being recognized as a Leader in three top analyst reports for the best integration platform as a service (iPaaS) solutions – the Gartner Magic Quadrant, Forrester Wave, and G2 Crowd Grid.
We believe these collective recognitions testify to the fact that SnapLogic is unrivaled when it comes to integrating cloud applications and on-premises data in one unified platform.

Gartner commended SnapLogic for:
• Our powerful integration convergence and augmented data integration delivery
• Our easy accessibility to diverse user personas
• Our pricing model simplicity and trial version

Synergy Software Systems is a Middle East partner. . This solution speeds up deployment of complex solutions with multiple jntegrations and significantly improves and simplifies the management and maintenance of integrations.

Whether for EDi to Odette standards for the automotive sector, or for streaming high volumes of data, or for ETL processes to bring data from multiple, enterprise systems into a data lake or Enterprise BI or Corporate performance management system, Snap Logic provides a multitude of pre built “Snap integrations: for a low code, configuration approach to integration.

Synergy Software Systems has provided integrated solutions in the region. Digital revolution is proving new opportunities and challenges. Robotic Processes Automation, Predictive analytics, ML AI, IoT, RFID, cloud services, data lakes, and mobility are now standard components of any solution. However digital revolution also requires agility and rapid robust deployment and ease of update and maintenance. Integration ETL, and streaming data from multiple systems at enterprise scale needs a new ‘productized’ low code approach to integration.

Snaplogic is a key tool for successful agile deployment of Enterprise integration, Corporate Performance management, EDI, BI and RPA solutions.

There are already major clients deploying Snap Logic in the UAE.

To learn more . Call us on 00971 43365589

Biometrics – privacy and security concerns

June 18th, 2019

On Monday last week a US Customs and Border Protection (CBP) subcontractor suffered a data breach that exposed the photos of tens of thousands of travelers coming in and out of the United States, through specific lanes at a single Port of Entry over a one and a half months period, in what was described as a “malicious cyber-attack.”

The database of traveler photos and license plate images was transferred to a CBP subcontractor’s network without the federal agency’s authorization or knowledge, the CBP explained. The subcontractor’s network was then hacked. BP said its own systems had not been compromised. Fortunately no other identifying information was included with the photos, and no passport or other travel document photos were compromised.

Images of airline passengers from the air entry and exit process were also not involved.

CBP’s “biometric entry-exit system,”is the government initiative to biometrically verify the identities of all travelers crossing US borders. which it is racing to implement so as to use facial recognition technology on “100 percent of all international passengers,” including American citizens, in the top 20 US airports by 2021.

The concern is whether that is urgency is ignoring vetting, and regulatory safeguards, and privacy legislation. Only last month, Perceptics, the maker of vehicle license plate readers used by the US government and cities to identify and track citizens, was hacked, and its files were dumped online. It is not clear whether the attacks were connected.

Wifi 6 what is it? Why does it matter?

April 13th, 2019

Wireless speeds will soon get a lot faster thanks to the introduction of Wi-Fi 6 later this year.

Wi-Fi 6 is the next evolution of wireless local area network (WLAN) technology and it will improve upon older Wi-Fi standards, especially with the coming release of 5G wireless technology. With Wi-Fi 6 and 5G emerging onto the market at roughly the same time, it would make sense that they’re somehow related; while both promise similar improvements, they’re distinctly different technologies.

The name Wi-Fi 6 is part of a new naming convention the Wi-Fi Alliance to make these more easily understood by Wi-Fi users, making it much like the 3G/4G/5G naming convention used by cellular data networks. Behind the Wi-Fi 6 name is the latest version of the 802.11 wireless networking standard: 802.11ax. This new Wi-Fi standard is reportedly up to 30% faster than Wi-Fi 5,. Speed hasn’t been the main benefit touted by the Wi-Fi Alliance and other industry experts; Wi-Fi 6 also brings lower latency, more simultaneously deliverable data, and improved power efficiency.

Latency is a significant problem especially for mobile, internet and cloud users i.e. just about everyone. Orthogonal Frequency Division Multiple Access (OFDMA), h is an improvement on Orthogonal Frequency Division Multiplexing (OFDM). OFDM is used by Wi-Fi 5, 4, and older standards to encode and transmit data form multiple clients or access points (APs) and to contend for the ability to transmit data; once the network is idle, data can be transmitted. OFDM is a popular and reliable way to decentralize access, but it has a major problem in that it can lead to serious latency.

OFDMA, makes a major change and puts the transmission coordination in the hands of 802.11ax APs. The AP centrally schedules data transmission and is able to further divide frequencies so as to transmit data to/from multiple clients at the same time. The aim is to reduce latency and increase network efficiency—especially in high-demand environments like stadiums, conference halls, and other public spaces. OFDMA broadcasts multiple signals at the same time, and can also increase the unit interval, which means outdoor Wi-Fi deployments will be faster and more reliable.

Wi-Fi 6 will extend the capabilities of Multi-User Multi-Input/Multi-Output (MU-MIMO). MU-MIMO was previously available only for downstream connections and allowed for a device to send data to multiple receivers at the same time; Wi-Fi 6 will add MU-MIMO capabilities to upstream connections to allow more simultaneous devices on one network. MU-MIMO, is already in use in modern routers and devices, but Wi-Fi 6 upgrades it. The technology allows a router to communicate with multiple devices at the same time, rather than broadcasting to one device, and then the next, and the next. Right now, MU-MIMO allows routers to communicate with four devices at a time. Wi-Fi 6 will allow devices to communicate with up to eight. As an analogy compare adding MU-MIMO connections to adding delivery trucks to a fleet, You can send each of those trucks in different directions to different customers. “Before, you had four trucks to fill with goods and send to four customers. With Wi-Fi 6, you now have eight trucks.

Extending the truck analogy OFDMA allows one truck to carry goods to be delivered to multiple locations. The network look at a ‘truck’ and see that it has only allocated e.g. 75 percent of the load capacity of that truck and this other customer is on the same route, so it fill up that remaining space with a delivery for the second customer. In practice, this is all used to get more out of every transmission that carries a Wi-Fi signal from a router to your device.

How fast is it?

– The short answer: 9.6 Gbps. compared to 3.5 Gbps on Wi-Fi 5.

– The real answer: both of those speeds are theoretical maximums that you’re unlikely to ever reach or need in real-world Wi-Fi use. The typical download speed in the US is just 72 Mbps, or less than 1 percent of the theoretical maximum speed. The fact that Wi-Fi 6 has a much higher theoretical speed limit than its predecessor is still important because that 9.6 Gbps can be split up across a whole network of devices which means both more devices or more potential speed for each device.

When Wi-Fi 5 came out, the average US household had about five Wi-Fi devices in it. Now, homes have nine Wi-Fi devices on average, and various firms have predicted we’ll hit 50 on average within several years. Those added devices take a toll on your network. Your router can only communicate with so many devices at once, so the more gadgets demanding Wi-Fi, the more the network overall is going to slow down. At first, Wi-Fi 6 connections aren’t likely to be substantially faster. A single Wi-Fi 6 laptop connected to a Wi-Fi 6 router may only be slightly faster than a single Wi-Fi 5 laptop connected to a Wi-Fi 5 router. Devices are more likely to maintain fast speeds on busy networks

As more and more devices get added onto your network, current routers might start to get overwhelmed by requests from a multitude of devices, Wi-Fi 6 routers are designed to more effectively keep devices up to date with the data they need. Each of device;s speeds may not be faster than they can reach today on a high-quality network, but they’re more likely to maintain those top speeds in busier environments. In a home where one person is streaming Netflix, another is playing a game, someone else is video chatting, and a whole bunch of smart gadgets — a door lock, temperature sensors, light switches, and so on — are all checking in at once the top speeds of those devices won’t necessarily be boosted, but the speeds you see in typical, daily use will get likely be better. Exactly how much fast will depend on how many devices are on your network and just how demanding are those devices. In a cloud world working on html 5 pages rather tcpip protocol, and with growing use of social media, digital storage, streaming video, AI, and querying data lakes its essential that the underlying infrastructure keeps up. We are seeing similar evolution with databases, chips and memory.

Wi-Fi 6 introduces some new technologies to help mitigate the issues that come with putting dozens of Wi-Fi devices on a single network. It lets routers communicate with more devices at once, lets routers send data to multiple devices in the same broadcast, and lets Wi-Fi devices schedule check-ins with the router. Together, those features should keep connections strong even as more and more devices start demanding data.

Wi-Fi 6 will also:
• Increase the number of transmit beamforming streams to eight in order to increase network range and throughput;
• use both the 2.4 GHz and 5GHz bands simultaneously to greatly improve performance;
• use 1024 quadrature amplitude modulation (1024-QAM) to increase throughput for emerging use cases (Wi-Fi 5 uses 256-QAM);
• implement individual target wake time (TWT) to improve battery life and reduce power consumption for Wi-Fi devices;
• introduce spatial reuse technology that will allow devices to more easily access a Wi-Fi network in order to transmit data.

Wi-Fi 6 allows devices to plan out communications with a router, reducing the amount of time they need to keep their antennas powered on to transmit and search for signals. That means less drain on batteries and improved battery life in turn. This is a feature called Target Wake Time, which lets routers schedule check-in times with devices.
Your laptop needs constant internet access, so it’s unlikely to make heavy use of this feature (except, perhaps, when it moves into a sleep state). This feature will be more valuable for smaller, already low-power Wi-Fi devices that just need to update their status every now and then. (Think small sensors placed around a home to monitor things like leaks or smart home devices that sit unused most of the day.)

Wi-Fi generations rely on new hardware, not just software updates, so you’ll need to buy new phones, laptops, and so on to get the new version of Wi-Fi. new devices will start coming with Wi-Fi 6 by default. As you replace your phone, laptop, and game consoles over the next five years, you’ll bring home new ones that include the latest version of Wi-Fi. There is one thing you will have to make a point of going out and buying: a new router. If your router doesn’t support Wi-Fi 6, then you won’t see any benefits, no matter how many Wi-Fi 6 devices you have. (You may however see a benefit, though, connecting Wi-Fi 5 gadgets to a Wi-Fi 6 router, because the router may then be capable of communicating with more devices at once.)

A new security protocol called WPA3. WPA3 makes it harder for hackers to crack passwords. For a Wi-Fi 6 device to receive certification from the Wi-Fi Alliance, WPA3 is required. (so be aware that it may not be included in uncertified devices.)

So where does 5G fit in ?
5G is the umbrella term for the fifth generation of mobile network technology, and it encompasses a lot of different elements. Cellular, or mobile networks, rely on licensed spectrum bands, auctioned off to the highest bidder. Carriers, like Verizon or AT&T, pay to use those bands. To roll out coverage they build a network of connected base stations capable of sending out a strong enough signal that it can serve multiple people (thousands in urban areas) at once. To recoup their investment, we pay them subscriptions.

Wi-Fi relies on unlicensed spectrum which is free to use, but the signal is relatively weak. We pay an Internet Service Provider (ISP) to deliver the internet to our door and then use a router to fill our house with Wi-Fi. We the same frequency band as our neighbors and that is a problem, when you live in a very densely populated area. The two frequencies that Wi-Fi uses are 2.4Ghz and 5Ghz. The 2.4Ghz has a lower potential top speed but it penetrates better, so it has a longer range than 5Ghz.

(Note that that 5Ghz Wi-Fi has absolutely nothing to do with 5G mobile networks.)

In every day life, most of us rely on Wi-Fi both at home and in the office — or in coffee shops — and mobile networks when we step out the front door and move out of range of the router. (Though for security reasons I would never recommend anyone to se a public hotspot)

Smartphones switch automatically and we don’t have to give it any thought, we just want a good connection at all times. That will continue to be the case for the vast majority of people after 5G rolls out. The difference is that both mobile networks and Wi-Fi are going to get faster. The prospect of download speeds between 1Gbps and 10Gbps, and upload speed or latency of just 1 millisecond, has us excited about 5G. The reality is that we will not get anywhere near the theoretical top speeds. The speed of your 5G connection will depend on many factors including: where you are, to what network you connect, how many other people connect, and what device you use.

The aim is to achieve a minimum download speed of 50Mbps and latency of 10ms. That will represent a major improvement over current average speeds, but just as with 4G LTE, 5G coverage is going to expand slowly. It’s also going to work hand-in-hand, not just with Wi-Fi, but with earlier generations of mobile network technology, so 4G LTE will continue to be offered as a fallback and will continue to evolve and get faster.

Hilton Engineering Conference London February 2019

February 18th, 2019

This conference for Hilton Chief Engineers took place at the beautiful Hilton London Metropole from 11th-15th February 2019.

Principal Consultant Ramesh Kulkarni represented us there together with John M. Clark Vice President – SynergyMMS Division Systems Associates, Inc.

SynergyMMS is rolling out globally across the group. Inigma, the next generation of this mobile, multi-language Facility management solution was presented at the show.

This cloud solution is rapidly installed with minimal training needed, no server, cost, no annual maintenance, no server license, no user licenses, just a simple per room monthly subscription.

Ask us about the ‘snagging solution; for new hotel openings, refurbishment, or extension projects.
0097143365589

EAM, field service, IOT and Holo lens -ask Synergy Software Systems, Dubai

February 17th, 2018

The digital world is already here and what seemed science fiction few years back we now accept as everyday. Voice activated commands on our smear phone now also query our databases and update our dashboards, remote medical checks are done at an atm, artificial intelligence and big data influence our live every time we log onto google, amazon, facebook or ring a callcentre.

We have been investigating IoT for over a year, particularly with regard to condition monitoring for asset management and several of our team were involved in recent training that included a hands on session for Microsoft Field Services. This is built on the Dynamics 365 platform as an extension of CRM and offer comprehensive features for field service: help desk, engineer scheduling and mobile operations. Field service is aimed at service companies with a large field force of service engineers and is typically integrated with erp systems and thus the overall project can be quite complex. To reduce the risk and implementation time we offer a proven accelerator.

We also offer a Enterprise Asset Management suite which is successfully deployed in several leading UAE companies for a number of years particularly for asset tracking.

In Dynamics 365/2012 for Ax EAM also needs to consider that both engineers and equipment may be sued is production or on projects. Thus engineering and maintenance scheduling also has to consider in house planned and breakdown maintenance and servicing and more complex overhauls and asset structures, the impact of equipment downtime on production schedules and much more. We offer a Microsoft certified isv integrated suite of EAM modules built on the Ax 2012/D365 platform that covers both field service and mobile as well as in in house maintenance.

Predictive maintenance and SCADA integration and extensive condition monitoring., embedded and Power BI analytics are no longer rocket science.

At a recent client 4 day workshop we demonstrated HOLO lens assisted reality to support engineers. This can for example be used to provide step by step guidance or for collaboration from the field with an OEM a remote manufacturer, or your chief engineer.

GDPR Affects All European Businesses – What about the G.C.C. and U.A.E.?

August 19th, 2017

See our previous article on this topic for why your company may be affected if you are a branch of a European company, or have branches in Europe, or trade with a European company.

From May 25, 2018, companies with business operations inside the European Union must follow the General Data Protection Regulations (GDPR) to safeguard how they process personal data “wholly or partly by automated means and to the processing other than by automated means of personal data which form part of a filing system or are intended to form part of a filing system.”

The penalties set for breaches of GDPR are up to 4% of a company’s annual global turnover.
For large companies like Microsoft that have operations within the EU, making sure that IT systems do not contravene GDPR is critical. As we saw on August 3, even the largest software operations like Office 365 can have a data breach.

Many applications can store data that might come under the scope of GDPR. the regulation has a considerable influence over how tenants deal with personal data. The definition of personal data is “any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.”
GDPR goes on to define processing of personal data to be “any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.”

That means that individuals have the right to ask companies to tell them what of their personal data a company holds, and to correct errors in their personal data, or to erase that data completely.

Companies therefore need to:
- review and know what personal data they hold,
- make sure that they obtain consents from people to store that data,
– protect the data,
- and notify authorities when data breaches occur.

On first reading, this might sound like what companies do – or at least try to do – today. The difference lies in the strength of the regulation and the weight of the penalties should anything go wrong.

GDPR deserves your attention.

The definitions used by GDPR are broad. To move from the theoretical to the real world an organization first needs to understand what personal data it currently holds for its business operations, and where they use the data within software applications.

It is easy to hold personal information outside of business applications like finance and erp and crm e.g. inside Office 365 applications, including:
• Annual reviews written about employees stored in a SharePoint or OneDrive for Business site.
• A list of applicants for a position in an Excel worksheet attached to an email message.
• Tables holding data (names, employee numbers, hire dates, salaries) about employees in SharePoint sites.
• Outlook contacts, and emails. Skype business,
• Social media sites
• Loyalty programmes
• T@A systems
• E commerce sites
• Mobile apps e.g. What’s App

Other examples might include contract documentation, project files that includes someone’s personal information, and so on.

What backups do you have of the customer’s data?
What business data do your staff hold on BYOD devices e.g. in What’s App?

Data Governance Helps
Fortunately, the work done inside Office 365 in the areas of data governance and compliance help tenants to satisfy the requirements of GDPR. These features include:
• Classification labels and policies to mark content that holds personal data.
• Auto-label policies to find and classify personal data as defined by GDPR. Retention processing can then remove items stamped with the GDPR label from mailboxes and sites after a defined period, perhaps after going through a manual disposition process.
• Content searches to find personal data marked as coming under the scope of GDPR.
• Alert policies to detect actions that might be violations of the GDPR such as someone downloading multiple documents over a brief period from a SharePoint site that holds confidential documentation.
• Searches of the Office 365 audit log to discover and report potential GDPR issues.
• Azure Information Protection labels to encrypt documents and spreadsheets holding personal data by applying RMS templates so that unauthorized parties cannot read the documents even if they leak outside the organization.

Technology that exists today within Office 365 that can help with GDPR.

Classification Labels
Create a classification label to mark personal data coming under the scope of GDPR and then apply that label to relevant content. When you have Office 365 E5 licenses, create an auto-label policy to stamp the label on content in Exchange, SharePoint, and OneDrive for Business found because documents and messages hold sensitive data types known to Office 365.

GDPR sensitive data types

Select from the set of sensitive data types available in Office 365.
The set is growing steadily as Microsoft adds new definitions.
At the time of writing, 82 types are available, 31 of which are obvious candidates to use in a policy because those are for sensitive data types such as country-specific identity cards or passports.

Figure 1: Selecting personal data types for an auto-label policy (image credit: Tony Redmond)

GDPR Policy

The screenshot in Figure 2 shows a set of sensitive data types selected for the policy. The policy applies a label called “GDPR personal data” to any content found in the selected locations that matches any of the 31 data types.

Auto-apply policies can cover all Exchange mailboxes and SharePoint and OneDrive for Business sites in a tenant – or a selected sub-set of these locations.


Figure 2: The full set of personal data types for a GDPR policy (image credit: Tony Redmond)

Use classification labels to mark GDPR content so that you can search for this content using the ComplianceTag keyword (for instance, ComplianceTag:”GDPR personal data”).

Caveats:
It may take 1-2 week before auto-label policies apply to all locations.
An auto-label policy will not overwrite a label that already exists on an item.

A problem is that classification labels only cover some of Office 365. Some examples of popular applications where you cannot yet use labels are:
• Teams.
• Planner.
• Yammer.

Microsoft plans to expand the Office 365 data governance framework to other locations (applications) over time.
Master data management
What about all the applications running on SQL or other databases?
Master Data Management MDM is a feature of SQL since SQL 2012. However, when you have many data sources then you are relay into an ETL process and even with MDM tools the work is still significant.

If you have extensive requirements then ask us about Profisee our specialist, productized MDM solution built on top of SQL MDM that allows you to do much of the work by configuration.

Right of Erasure
Finding GDPR data is only part of the problem. Article 17 of GDPR (the “right of erasure”), says: “The data subject shall have the right to obtain from the controller the erasure of personal data concerning him or her without undue delay.” In other words, someone has the right to demand that an organization should erase any of their personal data that exists within the company’s records.

Content searches can find information about someone using their name, employee number, or other identifiers as search keywords, but erasing the information is something that probably also needs manual processing to ensure that the tenant removes the right data, and only that data.

You can find and remove documents and other items that hold someone’s name or other identifier belonging to them by using tools such as Exchange’s v Search-Mailbox cmdlet, or Office 365 content searches.
What if the the data ahs to be retained because the company needs to keep items for regulatory or legal purposes, can you then go ahead and remove the items?
The purpose of placing content on-hold is to ensure that no-one, including administrators, can remove that information from Exchange or SharePoint.

The GDPR requirement to erase data on request means that administrators might have to release holds placed on Exchange, SharePoint, and OneDrive for Business locations to remove the specified data. Once you release a hold, you weaken the argument that held data is immutable. The danger exists that background processes or users can then either remove or edit previously-held data and so undermine a company’s data governance strategy.

The strict reading of GDPR is that organizations must process requests to erase personal data upon request.
What if the company needs to keep some of the data to satisfy regulations governing financial transactions, taxation, employment claims, or other interactions? This is a dilemma for IT. Lawyers will undoubtedly have to interpret requests and understand the consequences before making decisions and it is likely that judges will have to decide some test cases in different jurisdictions before full clarity exists.

Hybrid is even More Difficult

Microsoft is working to help Office 365 tenants with GDPR. However, I don’t see the same effort going to help on-premises customers. Some documentation exists to deal with certain circumstances (like how to remove messages held in Recoverable Items), but it seems that on-premises customers have to figure out a lot things for themselves.

This is understandable. Each on-premises deployment differs slightly and exists inside specific IT environments. Compared to the certainty of Office 365, developing software for on-premises deployment must accommodate the vertical and company specific requirements with integrations and bespoke developments.

On-premises software is more flexible, but it is also more complicated.
Solutions to help on-premises customers deal with GDPR are more of a challenge than Microsoft or other software vendors wants to take on especially given the industry focus of moving everything to the cloud.

Solutions like auto-label policies are unavailable for on-premises servers. Those running on-premises SharePoint and Exchange systems must find their own ways to help the businesses that they serve deal with personal data in a manner that respects GDPR. Easier said than done and needs to start sooner than later.

SharePoint Online GitHub Hub

If you work with SharePoint Online, you might be interested in the SharePoint GDPR Activity Hub. At present, work is only starting, but it is a nway to share information and code with similarly-liked people.

ISV Initiatives

There many ISV-sponsored white papers on GDPR and how their technology can help companies cope with the new regulations. There is no doubt that these white papers are valuable, if only for the introduction and commentary by experts that the papers usually feature. But before you resort to an expensive investment, ask yourself whether the functionality available in Office 365 or SQL is enough.

Technology Only Part of the Solution

GDPR will effect Office 365 because it will make any organization operating in the European Union aware of new responsibilities to protect personal data. Deploy Office 365 features to support users in their work, but do not expect Office 365 to be a silver bullet for GDPR. Technology seldom solves problems on its own. The nature of regulations like GDPR is that training and preparation are as important if not more important than technology to ensure that users recognize and properly deal with personal data in their day-to-day activities.

Support for Microsoft Dynamics in the U.A.E. – Dubai – and the G.C.C and more -Synergy Software Systems

June 9th, 2016

“Go with Synergy and sleep at night.”

That mantra was propagated by our customers in the 90s and is still the message today – that is why:
- we have many customers who have been with us over 10 years and some over 15 years.
- we received the Highest Customer Satisfaction Award from Microsoft
- we attained President’s Club status (top 5% of Partners globally)
- we are the only Dynamics Ax partner in the Middle East accepted into Ax Pact
- we are the only Middle East Dynamics partner to attend Connect at Seattle last year
- we regularly work with Microsoft’ s global platinum partners to assist their deployments in this region.

The reasons are simple.
Our business is built on support, not on selling licenses.
We don’t outsource,
We don’t use temporary staff
We don’t use freelancers
All our consultants are centralized, in large modern offices, in the heart of Dubai
We support customers globally with web dial in and screens sharing.
We maintain a support infrastructure for testing, patching analysis.
We participate in the Microsoft TAP programme for beta testing
Even the support receptionist is a Microsoft certified consultant
We support an manned CRM helpdesk -even the
If we can’t support it ourselves then we don’t implement
Those who implement and our know your people and your business and your build are there to support you.
We have the depth and breadth of skills that a small company cannot offer.
On average our consultants have more than 10 years experience
Our Dynamics team has more than 300 man years of relevant experience and numerous certifications

Synergy Software Systems -”Working together”
Find out why so many companies have benefitted from our post implementation project review to stablise their system to provide a firm platform to take them forward, so that they can leverage the full power of Microsoft Dynamics.
Let us help you to sleep at night.

Dynamics Dubai Careers – Synergy Software Systems

October 4th, 2015

Synergy Software Systems is a member of the Microsoft President’s Club and has provided stable employment since we were founded in 1991. Synergy is also the also the oldest Microsoft Dynamics partners in the region and has an experienced stable consulting team that is respected globally for its knowledge delivery and support. This is reflected in our membership for several years as the Middle East partner for Ax Pact a global alliance of some of the best Dynamics partners.

Our practise continues to thrive and to expand into new verticals and geographies. If you are a seasoned consultant with 10 years or more professional and consulting experience and at last 5 years in Dynamics, or at the start of your career have strong academics in relevant subjects. Even better if you have proven documentation skills, product exposure, and can speak good English and ideally also Arabic or French and lot more! We provide an excellent learning and support environment but there is also strong peer expectation (and competition). The result is one of the most senior and stable consulting Dynamics teams, and customer bases (many with us more than 15 years).

Next year the future includes Dynamics CRM 2106, Dynamics Ax 7, Sql 2016, Edge browser, Windows 10 Office 2015, Cortana Analytics, Holo lens, and much, much more with an azure platform that is built to dominate the cloud. Where is your future. We also have other world class practices fr example Enterprise Time and Attendance.

Do you have what it takes to be a Synergy consultant? Don’t expect to start at the top – without the credentials but Synergy on our cv will give your worthwhile experience. There is still a global recession there are many troubled areas and refugees – try Dubai and Synergy Software Systems for challenging work, ongoing career enhancement and stable employment.

Software selection – human considerations

October 3rd, 2015

To Organise and to manage a software selection project is not so easy. If you cannot get a critical mass of people deeply involved in the accounting software selection project, then think twice before starting. Change management is often given only superficial consideration. A new tool is of little use if no one uses it. It does little good for a company to spend $500,000 on anew accounting software, or ERP software when the people who will be using the accounting software systems cannot, or will not operate it effectively.

Is your company organized for success (culture, leadership style, business processes and finally business management . If not then you need to consider more carefully the role of the implementation partner and not blame the software.

In addition to the usual questions of :
• Can the software systems do what you the businesses needs?
• What operating and hardware configuration do I require?
Also ask
Do your employees have the ability to utilize these software or ERP solutions effectively?
Hoc an I change that?
Does my implementation partner offer industry and business knowledge and track record of enabling that change process in a company like mine?

Businesses try to work to policies- which are based on predetermined assumptions, conditions, processes, statutory and other constraints, and if effect embody pre-defined decisions. decisions.

The real world is full of exceptions. Companies use information to control day to day operations relating to the production of goods and services. This information is used to control budgets and cash flows and the best utiisation of assets. . Managers combine the latest information with their managerial experience to make sound business decisions within the policy guidelines..

The negative side is that this information is of little use when the data is not updated correctly on time, and or is not integrated. Thus all functions need to participate and collaborate- if one drops out and relies on manual or Excel systems alone then the integration loop is broken and “system” does not operate effectively. The key to the effective utilization of accounting software systems is the effective production of and access to timely a, accurate meaningful information to ensure timely informed decision making at all levels of the organisation. “Knowledge is power.”

Managers can make faster and better or worse decisions based on the available information ,but they may not even be aware they need to take a decision without information whether in an inquiry screen or a report, a bI dashboard, an alert or a kpi.

Advanced software can be sued to auto decide some decisions, or to make recommendations e.g mrp. or forecasting tools. genrall software systems do not make decisions. People do. When people are not provided with the tools they require to make these critical decisions, it’s very likely mistakes will be made. Some of these decision taking responsibilities are imposed upon by the market in which the company competes. Some are imposed by the owners or managers interpretation of how the business should be operated. However, the methods by which these decisions are made can only be formulated by each individual person, and that is why the software/human relationship is so importsnt.

Each person in any company is unique. So when defining just what software systems consider the unique needs of each person with whom the accounting software systems will “integrate” or how you will select those unique people who will be comfortable with the system

Each person who will be processing transactions (e.g. customer orders) must be given the opportunity to express their personal needs, for it is these people who will be required to operate the system. Further, each manager who will be making decisions based in part upon the information produced by the accounting software systems must express their reporting needs as well (e.g. Business Intelligence, Performance Metrics, and Exception Management ). It is only after these needs are identified and understood recognized that the broader corporate strategic needs should be defined.

At the core of these considerations is a clearly understood definition of what the company is to do strategic objectives , and it must do well in order to succeed- tactical excellence. The way a company organizes itself and controls the flow of information into and out of the accounting software systems, determines to a large degree how successful the accounting software systems will become.

As individual people define their needs, do not limit their responses to factors relating only to the software systems. Let them express their needs with respect to how they fit into the overall business, what information they require when, in what format, from other people, where potential bottlenecks may occur, and in general how the manual side of the business management processes should be controlled.

Selection of a new software systems does not eliminate the need for business process control procedures, and it is those procedures impact on the effectiveness of the new accounting software systems. Some people swear will champion software systems or ERP solutions, while others will believe those are seriously flawed and will cling to old, manual systems. Some will be reluctant to share knowledge- the basis of their experience and seniority. Some may fear new technology. others may worry more about social change – reporting to a new boss, working in a different office. Most people adopt new technology is every day life a new phone, car, tv etc, but don’t so easily change their personal relationships.-

One person sees the software systems as a friend, while the other as a threat. You cannot compare your new wife to your old girlfriend fi you want a long and happy marriage. All people, whether they have had computer experience or not, have developed some personal definition of what they consider to be “good” software systems. If the software systems you purchase meets these pre conceived notions, the task of learning and operating the system will be relatively easy. If the system does not make sense to people, then they will resist entering data, and undergoing training and errors will be made. Evaluate the degree of fit between your employees and the accounting software systems you are examining during your software selection project. The cultural fit with the consultants is equally important.

Tyr not to impose a new software systems on people. Consider whether they feel their opinion is as important as others, and that that the accounting software systems will assist them personally. WIFIM “What’s in it for me?”

While you might argue that first impressions can be changed over time, andc omputer system can seem quite a daunting challenge to . The operator, whether it is accountant, bookkeeper, or clerk can be suffering silence. This suffering might reach the point where the person is willing to consider another job.

No amount of patience, encouragement, or training will reduce this suffering. Mistakes will begin to occur more frequently as well. If the person does not leave, you may have to face the grim decision that their mistakes can be corrected only by removing them from the job. Has this achieved anything positive? Certainly not! If too many critical people in the organization resist the software systems, you can consider the selection project a complete failure. That’s why this evaluation of personal needs is so very important.

Any multi-user accounting system or ERP solutions will be operated by a number of different people with different job functions and different skill levels. The larger the system becomes, the more diverse these individual abilities become, and the more critical an evaluation of their relationship to the accounting system becomes.

Perhaps the least skilled person who might be called upon to operate the accounting software systems is a warehouse manager or even a shipping or receiving clerk.
Does the system meet their needs?
Does the menu structure segregate their input screens into one logical area?
Does the language used, particularly Help Screens, talk to them on their skill level?
Will the processing methodology make sense to someone with their relative skills and educational background?
Do they have to work in multiple systems?

I cannot emphasize enough the importance of training. If you want to remove fear, then you have to build confidence.
You need to reduce errors, not only for the business to avoid fear of personal embarrassment. These result from a lack of experience I.e training and practise with the new software systems.
Invest the time in practical training – understanding a demo does not make you fluent in transaction entry or in report analysis. Reading the highway code is not enough for you to drive – you also need 40 hours on the road experience. You also need an instructor by your side for sometime and to be formally tested and certified. If the investment in training appears formidable, then beware. The major lesson that those who implement cite is that they unde-rbudgetted time for training. Don’t be fooled by those who calm they can configure and get you live in a month or so with an accelerator, or a blueprint . Configuration is a relatively simple, job. Defining the right configuration need user interaction and the testing, To make that work needs their training and practice time. Transforming a an install into a working implementation is another matter. It is not enough to buy a tool you have to understand the many different ways to use it and build up skill.

Depending upon the vendor or product reseller you have selected to provide your accounting software systems, you will probably have several options open to you. If your system is a large multi-user installation, you might want to consider sending several people to a regional or national training seminar lasting several days. While expensive on the surface, this intensive class room oriented environment will enable these people to develop a detailed knowledge which can be passed on to others. Train the trainer really works.

Demonstration accounting software systems are excellent training tools. An even better one is a training company with your own Chart of Accounts, vendors, customers, and employees. This provides people the opportunity to experience a “real” data processing environment without running the risk that errors will lead to catastrophes.

One last point should be discussed with respect to training. Some people will find it difficult, if not impossible, to make the transition to new accounting software systems, or from one accounting software system to another, perhaps more powerful ERP solution.

While you might wish the accounting system or ERP solution could be installed with minimum problems, this may be your most significant hurdle. If the installation of integrated accounting software systems is the best alternative for your company, what is to be done with those people who cannot, or will not make the adjustment?

You must face the very real possibility some people may have to be replaced. It’s not a very pleasant thought, but do not delude yourself into thinking all people will be as excited about new accounting software systems as you are. Business is not easy sometimes, and this is one of those times. I do not like the idea any more than you do, but changes may be necessary for the good of the company and its employees.

Ask yourself if you know how to organize and control an accounting systems selection project. One of the greatest dangers is people assuming they know when in fact that are ignorant. They do it rarely in their business life. Can IT or choose a finance system, do they really know how to select a vendor or a solution? Manger’s need to have confidence in their decision making but often they do not know how to evaluate facts outside their core functional area, nor even what facts are needed to evaluate a solution. Its too easy rush into a demo and to benchmark everything against the first software seen .

In practice its better to spend sometime discussing your business needs, your change management challenges, and the business case and to focus on the implementation partner understanding and expertise. the right partner will guide you through the process and will not waste your time with inappropriate solutions, and then the demo will have some relevance to your needs. and you will have a better idea how to evaluate it.

Asset Management and Tracking in the U.A.E.

June 18th, 2015

It is no secret that Synergy Software Systems and Deyafa Systems work closely together in the hospitality sector.
One of the key technologies used is mobile tracking of assets with RFID and bar code.

Our solutions are implemented and supported by us for major groups in the region. This includes both the physical and financial asset lifecycle management

Track5000
The Real Asset Management’s (RAM( asset tracking application form allows your customers to perform regular audits and to keep a central, up to date register of their assets at all times.

The mobile app can use existing iOS, Android or Windows mobile devices to track and count assets, quickly and accurately at lower cost.

This app is an ideal solution for finance teams where routine asset tracking, or regular physical audits are often delegated to other department staff..

The mobile app integrates fully with RAM’s fixed asset accounting module for a financial asset register with comprehensive management of depreciation and asset values There is no need to purchase expensive scanning equipment.

Find out how you can :
• Minimise the number of lost assets
• Improve asset utilisation
• Quickly build a central asset register of all valuable or roaming assets
• Keep an up to date register for insurance purposes, warranty, and manufacturer details
• Manage the transfer, issue and return of assets to record accurate asset lending and location
• Flag items as transferred, located, missing
• Upload audited data to the central asset register
• Streamline your annual asset count and financial year end close and audit.

Synergy Software Systems, Dubai – in top 5% of Microsoft Enterprise Resource Partners

June 17th, 2015

We received confirmation from Microsoft of our attainment of the new Enterprise Resource Competency which has been by less than 5% of Microsoft Global Partner Network.

That ‘s why you can be assured of a successful, Synergy Software Systems Implementation – a 100% track record of successful projects with Dynamics Ax since we started the practice in 2003. Its also why the Highest Customer Satisfaction Award for 2014 also has Synergy’s name on it.

We are proud of our professionals.

We receive similar accolades across our solutions- for years the word in the hospitality industry is “go with Synergy and sleep a night” and why many of our Sunsystems customers have been loyal for over 15 years.

Value ultimately comes from competence and attitude and the results consistently shows that the right partner will give the right solution, service, support and price and deliver the right value.

Real Asset Manager- Mobile app! For your asset tracking-ask Synergy Software Systems, Dubai

March 5th, 2015

The mobile app provides the opportunity to use existing iOS, Android and Windows mobile devices to track assets, making the task easier and more cost effective. RAM’s asset tracking software allows you to perform regular audits and keep a central, up to date asset register at all times.

This solution integrates fully with RAM’s fixed asset accounting module if depreciation is required. There is no need to purchase expensive scanning equipment, just use your existing smart devices!
This app provides an ideal solution where routine asset tracking, physical auditing or the building of a central asset register is required.

Find out how you can:
• Minimise the number of lost assets
• Improve asset utilisation and reduce costs
• Quickly build a central asset register
• Keep an up to date asset register for insurance purposes
• Manage the issue and return of items
• Record asset lending
• Flag items as transferred, located or missing
• Upload audited data to a central asset register